Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A82EE8123B2B11EEA5563C434AD9E6FC.roa
File: A82EE8123B2B11EEA5563C434AD9E6FC.roa (raw, json)
Hash identifier: w0iRmt6aswVxkConRJNfVNtHztfdnOVOBxTCdn5scwA=
Subject key identifier: AE:9C:B0:B8:B3:7B:E7:22:22:E0:A2:FD:EC:0E:C7:17:8A:F7:76:A5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 35EB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A82EE8123B2B11EEA5563C434AD9E6FC.roa
Signing time: Tue 15 Aug 2023 05:21:59 +0000
ROA not before: Tue 15 Aug 2023 05:21:55 +0000
ROA not after: Mon 27 May 2024 05:21:55 +0000
asID: 140627
IP address blocks: 156.247.148.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13803 (0x35eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 05:21:55 2023 GMT
Not After : May 27 05:21:55 2024 GMT
Subject: CN=64db0b77-3ec6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:9a:42:21:cb:ae:5f:4a:38:d4:aa:62:ce:25:
da:39:17:8e:c2:ce:f7:14:56:f7:1b:79:d1:bf:e2:
f5:d2:03:b2:d2:1c:13:05:36:f5:11:09:a2:be:f2:
e0:17:3a:73:b2:93:c9:6c:b8:d3:04:28:fd:62:5e:
64:ce:61:6d:af:39:c4:91:9a:18:f2:9a:e5:06:da:
66:6d:12:ad:49:01:d9:3c:77:8b:c1:a3:ea:f5:19:
55:0d:47:28:40:58:3c:36:ef:3b:34:7d:de:15:e9:
77:db:8b:40:52:f3:45:9a:16:3e:c4:14:ee:f1:61:
37:de:a6:a2:65:fe:80:4b:08:53:14:8a:e4:7a:97:
f7:74:8f:4d:ec:c0:e0:36:50:dd:71:3d:25:05:24:
2e:15:8b:5b:01:68:15:1b:99:c0:a4:bd:97:29:d0:
74:41:ad:ae:19:dd:35:10:5f:cc:77:63:6a:ae:d1:
aa:50:04:95:f0:2b:ce:11:8c:cf:98:3c:b3:c3:4c:
35:9d:28:ec:f0:b8:6e:a5:56:6b:41:fe:78:a7:84:
5d:0d:0f:68:db:90:53:03:cd:c5:6a:94:6d:ee:37:
c8:92:ff:a6:78:5d:58:2b:83:ea:2f:da:9f:4f:ff:
4e:4c:a9:ce:af:d3:92:1e:72:b5:be:cb:17:d2:73:
a1:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:9C:B0:B8:B3:7B:E7:22:22:E0:A2:FD:EC:0E:C7:17:8A:F7:76:A5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A82EE8123B2B11EEA5563C434AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.148.0/24
Signature Algorithm: sha256WithRSAEncryption
90:95:33:90:7b:1c:2c:f2:e7:8e:ff:d5:eb:36:fa:11:ad:c6:
e9:1a:29:ef:51:66:89:87:b2:4a:4c:ab:12:b7:02:36:9a:40:
2d:1a:0c:fd:48:52:0a:06:b0:81:aa:52:3b:e1:21:b4:6d:0b:
a7:61:9d:77:10:e5:cb:36:71:f0:b9:2f:95:72:e7:49:0a:35:
87:5f:4a:2d:c8:9c:cb:f3:cc:46:b3:a6:8f:b2:b5:2b:89:c4:
bf:23:72:83:64:94:97:f6:18:b8:2a:5b:da:37:5f:b0:26:91:
d5:e3:b7:1c:23:51:30:c9:f8:af:b8:c9:bf:53:24:0d:74:9c:
bc:3f:c4:98:a6:8b:ba:93:7c:e0:d1:14:6c:e0:be:45:cd:0d:
74:4d:d2:ff:52:24:f3:2f:e7:cb:a8:be:9d:c0:bc:e3:d4:24:
18:27:85:34:81:f1:e6:51:8c:58:17:01:66:38:96:f7:54:1e:
26:11:2e:f2:e3:ca:e8:eb:f6:b3:ec:eb:31:a6:5c:12:30:77:
72:56:f4:cd:ba:29:3d:9c:0e:e8:99:ab:f7:36:da:59:8a:ab:
01:dd:40:39:5d:4b:0b:a3:98:f2:0b:15:c5:ee:f6:a0:47:ff:
87:6c:7d:6a:28:a6:95:3d:64:9a:77:04:b9:2a:76:90:72:a2:
5b:e6:89:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:14 2024 by rpki-client on console-fra.rpki-client.org